Abstract
In attribute-based access control, users with specific verified attributes will gain access to some particular data. Concerning the privacy of the users' attributes, we study the problem of distributed attribute-based private access control (DAPAC) with multiple authorities. Each authority will learn and verify only one of the attributes.To investigate its fundamental limits, we introduce an information-theoretic DAPAC framework, with N \in {\mathbb{N}},N \geq 2, replicated non-colluding servers (authorities), and some users. Each user has an attribute vector {{\mathbf{v}}^{\ast}} = \left( {v_1^{\ast}, \ldots,v_N^{\ast}} \right) of dimension N and is eligible to retrieve a message {W^{{{\text{v}}^{\ast}}}, available on all servers. Each server n ∈ [N] can only observe and verify the n'th attribute of a user. In response, it sends a function of its authorized messages to the user. The system must satisfy the following conditions: (1) Correctness: the user with attribute vector v * can retrieve his intended message {W^{{{\text{v}}^{\ast}}} from the servers' responses, (2) Data Secrecy: the user will not learn anything about the other messages, (3) Attribute Privacy: each Server n learns nothing beyond attribute n of the user. The capacity of the DAPAC is defined as the ratio of the file size and the aggregated size of the responses, maximized over all feasible schemes. We obtain a lower bound on the capacity of this problem by proposing an achievable algorithm with rate \frac{1}{{2K}}, where K is the size of the alphabet of each attribute.